Forge Home

unbound

Puppet Unbound management module

336,857 downloads

25,108 latest version

3.5 quality score

We run a couple of automated
scans to help you access a
module's quality. Each module is
given a score based on how well
the author has formatted their
code and documentation and
modules are also checked for
malware using VirusTotal.

Please note, the information below
is for guidance only and neither of
these methods should be considered
an endorsement by Puppet.

Version information

  • 2.5.0 (latest)
  • 2.4.1
  • 2.4.0
  • 2.0.0
  • 1.3.6
  • 1.3.5
  • 1.3.4
  • 1.3.3
  • 1.3.2
  • 1.3.1
  • 1.2.2
  • 1.2.1
  • 1.2.0
  • 1.1.8
  • 1.1.7
  • 1.1.6
  • 1.1.5
  • 1.1.4
  • 1.1.3
  • 1.1.2
  • 1.1.0
  • 1.0.0
  • 0.0.5
  • 0.0.3 (deleted)
  • 0.0.2 (deleted)
  • 0.0.1 (deleted)
released Dec 12th 2013
This module has been deprecated by its author since Dec 16th 2020.

The author has suggested puppet-unbound as its replacement.

Start using this module

Tags: dns, unbound

Documentation

zleslie/unbound — version 0.0.5 Dec 12th 2013

Unbound

A puppet module for the Unbound caching resolver.

Supported Platforms

  • Debian
  • FreeBSD
  • OS X
  • RHEL clones (with EPEL)

Requirements

The concat module must be installed. It can be obtained from Puppet Forge:

puppet module install ripienaar/concat

Usage

Server Setup

At minimum you should setup the interfaces to listen on and allow access to a few subnets.

class {
  "unbound":
    interface => ["::0","0.0.0.0"],
    access    => ["10.0.0.0/20","::1"],
}

Stub Zones

These are zones for which you have an authoritative name server and want to direct queries.

unbound::stub { "lan.example.com":
  address  => '10.0.0.10',
  insecure => true,
}

unbound::stub { "0.0.10.in-addr.arpa.":
  address  => '10.0.0.10',
  insecure => true,
}

Unless you have DNSSEC for your private zones, they are considered insecure, noted by insecure => true.

Static DNS records

For overriding DNS record in zone.

unbound::record { 'test.example.tld':
    type => 'A',
    content => '10.0.0.1',
    ttl => '14400',
}

Forward Zones

For external domains resolving:

unbound::forward { '.':
  address => [
              '8.8.8.8',
              '8.8.4.4'
             ]
}